This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/doj_arc0hpJCj-20elTZUPQ18wI.roa File: doj_arc0hpJCj-20elTZUPQ18wI.roa (raw, json) Hash identifier: 8rKdL4arpmAgVjUjtlqg8hy0SuBzI5o/QSw8FUU4zI8= Subject key identifier: 76:88:FF:6A:B7:34:86:92:42:8F:ED:B4:7A:54:D9:50:F4:35:F3:02 Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034 Certificate serial: 019B7F82DDE3DDD86D29445AEDF79FCE51CD Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/doj_arc0hpJCj-20elTZUPQ18wI.roa Signing time: Fri 02 Jan 2026 16:20:41 +0000 ROA not before: Fri 02 Jan 2026 16:20:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212623 IP address blocks: 2a0b:b83:ff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.mft rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 07:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:82:dd:e3:dd:d8:6d:29:44:5a:ed:f7:9f:ce:51:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034 Validity Not Before: Jan 2 16:20:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7688ff6ab7348692428fedb47a54d950f435f302 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:96:7a:d5:21:8c:e9:e9:fc:2c:31:b2:37:77: e6:ad:63:e8:d5:15:00:f3:75:17:20:4c:01:2c:7a: 36:78:ba:2a:c5:ed:77:9e:d3:1b:7f:cf:d8:b0:ad: fe:a8:fb:9d:39:d1:b8:8b:3b:8d:59:46:b7:ce:9c: 3e:fb:d9:71:5f:9f:49:17:bc:91:d1:59:0e:0a:f9: 47:ec:bb:f8:49:8d:0e:ef:6a:55:50:9e:d0:da:fe: 07:e6:ba:f4:50:a4:7b:20:3e:20:77:03:22:91:a2: 30:b0:e0:b7:47:84:61:4a:4a:55:3f:d7:6e:1a:fc: cf:74:b3:81:fd:6c:14:7d:73:05:78:32:f8:91:85: d4:02:34:d3:61:32:5f:97:f4:99:9b:b4:79:6b:77: be:26:8a:43:76:0f:65:3c:b0:3b:d1:2a:6a:1c:7e: ae:ac:66:9d:71:45:72:2d:61:46:21:93:d3:7d:45: 77:f7:a1:00:8b:8f:f5:cb:7e:f4:ca:c0:ac:03:67: a1:01:0a:06:6f:da:0d:ed:ab:f3:56:f1:c0:42:29: 5c:8e:2f:8e:10:40:f4:e1:be:2e:63:d9:21:6f:d4: f0:9f:45:74:e6:27:38:0f:13:18:ff:51:f8:40:7c: f8:02:b0:03:d9:64:77:6d:1f:5b:05:63:3a:ec:00: 04:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:88:FF:6A:B7:34:86:92:42:8F:ED:B4:7A:54:D9:50:F4:35:F3:02 X509v3 Authority Key Identifier: keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/doj_arc0hpJCj-20elTZUPQ18wI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:b83:ff::/48 Signature Algorithm: sha256WithRSAEncryption da:89:e4:66:b9:ed:9d:0d:34:a8:08:63:9c:a3:fc:e3:ec:d1: 79:b1:b3:5d:da:0b:37:02:61:57:25:d0:ad:81:63:46:02:96: df:0e:50:78:13:54:70:65:c0:23:91:b8:a9:fa:e3:8f:e2:10: bf:a0:e8:16:63:d4:61:0d:6a:f0:de:86:ac:be:6c:eb:4e:4c: 19:4d:c5:32:56:80:f3:d2:4c:55:7a:0a:2e:cd:02:fd:5c:04: 08:2f:55:d3:25:d7:c3:90:13:7e:78:3b:78:93:2c:45:56:3e: 88:50:e1:05:62:de:24:93:c0:d8:be:e3:1e:84:eb:07:9c:83: 6b:6d:de:84:31:30:df:98:c9:3f:de:4e:37:1f:61:6c:e6:ff: 79:48:45:ae:6a:f2:80:8b:ed:31:2f:76:a6:c5:43:d1:9f:25: 01:b4:ce:b8:bf:14:16:c1:7f:61:a8:58:c4:14:7c:dc:34:56: 2c:4b:61:24:95:79:8c:da:9b:a4:16:46:76:fe:35:24:6f:a9: 4c:35:39:ba:3a:0c:fe:ae:a8:64:5b:3c:5b:85:78:05:17:06: 26:dd:86:6f:2e:23:27:ab:bd:52:ce:c8:03:58:c3:4e:fc:a1: 49:76:5d:8e:40:47:98:35:58:6d:f7:e6:db:ba:e1:bf:37:31: 22:20:48:c4 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt/gt3j3dhtKURa7fefzlHNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxYTdiMGQ4ZGU4MjUxZDM2ZDdjODNmYWY2YmM3ZWZlYzcz YjUwMzQwHhcNMjYwMTAyMTYyMDQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3Njg4ZmY2YWI3MzQ4NjkyNDI4ZmVkYjQ3YTU0ZDk1MGY0MzVmMzAyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsZZ61SGM6en8LDGyN3fmrWPo1RUA 83UXIEwBLHo2eLoqxe13ntMbf8/YsK3+qPudOdG4izuNWUa3zpw++9lxX59JF7yR 0VkOCvlH7Lv4SY0O72pVUJ7Q2v4H5rr0UKR7ID4gdwMikaIwsOC3R4RhSkpVP9du GvzPdLOB/WwUfXMFeDL4kYXUAjTTYTJfl/SZm7R5a3e+JopDdg9lPLA70SpqHH6u rGadcUVyLWFGIZPTfUV396EAi4/1y370ysCsA2ehAQoGb9oN7avzVvHAQilcji+O EED04b4uY9khb9Twn0V05ic4DxMY/1H4QHz4ArAD2WR3bR9bBWM67AAEFwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFHaI/2q3NIaSQo/ttHpU2VD0NfMCMB8GA1UdIwQY MBaAFLGnsNjeglHTbXyD+va8fv7HO1A0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2It Mzk0YWNkMjFmMzliLzEvZG9qX2FyYzBocEpDai0yMGVsVFpVUFExOHdJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2ItMzk0YWNkMjFmMzli LzEvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgsLgwD/ MA0GCSqGSIb3DQEBCwUAA4IBAQDaieRmue2dDTSoCGOco/zj7NF5sbNd2gs3AmFX JdCtgWNGApbfDlB4E1RwZcAjkbip+uOP4hC/oOgWY9RhDWrw3oasvmzrTkwZTcUy VoDz0kxVegouzQL9XAQIL1XTJdfDkBN+eDt4kyxFVj6IUOEFYt4kk8DYvuMehOsH nINrbd6EMTDfmMk/3k43H2Fs5v95SEWuavKAi+0xL3amxUPRnyUBtM64vxQWwX9h qFjEFHzcNFYsS2EklXmM2pukFkZ2/jUkb6lMNTm6Ogz+rqhkWzxbhXgFFwYm3YZv LiMnq71SzsgDWMNO/KFJdl2OQEeYNVht9+bbuuG/NzEiIEjE -----END CERTIFICATE-----Generated at Tue Jan 20 15:19:00 2026 by rpki-client